dave
/
cpfsyslog
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
cpfsyslog/src/elasticsearch-template.json

83 lines
2.1 KiB
JSON
Raw Blame History

{
"template": "firewall-*",
"index_patterns": [
"firewall-*"
],
"settings": {
"number_of_replicas": 0,
"number_of_shards": 8
},
"mappings": {
"event": {
"_source": {
"enabled": true
},
"properties": {
"action": {
"type": "keyword"
},
"app": {
"type": "keyword"
},
"date": {
"type": "date"
},
"log_date": {
"type": "date"
},
"dest_addr": {
"type": "ip"
},
"dest_port": {
"type": "long"
},
"direction": {
"type": "keyword"
},
"interface": {
"type": "keyword"
},
"ip_version": {
"type": "short"
},
"length": {
"type": "long"
},
"protocol_id": {
"type": "short"
},
"src_addr": {
"type": "ip"
},
"endpoint": {
"type": "ip"
},
"src_city": {
"type": "keyword"
},
"src_country": {
"type": "keyword"
},
"src_country_code": {
"type": "keyword"
},
"src_port": {
"type": "long"
},
"src_region": {
"type": "keyword"
},
"src_state": {
"type": "keyword"
},
"srcloc": {
"type": "geo_point"
},
"ttl": {
"type": "long"
}
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink